Mariadb

Mariadb

411 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-27383

Exploit
  • EPSS 0.24%
  • Veröffentlicht 12.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:55:40

MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component my_strcasecmp_8bit, which is exploited via specially crafted SQL statements.

7.5

CVE-2022-27384

Exploit
  • EPSS 0.22%
  • Veröffentlicht 12.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:55:40

An issue in the component Item_subselect::init_expr_cache_tracker of MariaDB Server v10.6 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.

7.5

CVE-2022-27385

Exploit
  • EPSS 0.16%
  • Veröffentlicht 12.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:55:40

An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.

7.5

CVE-2022-27386

Exploit
  • EPSS 0.21%
  • Veröffentlicht 12.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:55:40

MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component sql/sql_class.cc.

7.5

CVE-2022-27387

Exploit
  • EPSS 0.25%
  • Veröffentlicht 12.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:55:40

MariaDB Server v10.7 and below was discovered to contain a global buffer overflow in the component decimal_bin_size, which is exploited via specially crafted SQL statements.

7.5

CVE-2018-25032

Exploit
  • EPSS 0.09%
  • Veröffentlicht 25.03.2022 09:15:08
  • Zuletzt bearbeitet 21.08.2025 20:37:11

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

7.5

CVE-2022-0778

Warnung
  • EPSS 7.54%
  • Veröffentlicht 15.03.2022 17:15:08
  • Zuletzt bearbeitet 14.04.2026 10:16:21

The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed ...

7.8

CVE-2022-24052

  • EPSS 0.06%
  • Veröffentlicht 18.02.2022 20:15:18
  • Zuletzt bearbeitet 21.11.2024 06:49:44

MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerabil...

7.8

CVE-2022-24048

  • EPSS 0.06%
  • Veröffentlicht 18.02.2022 20:15:17
  • Zuletzt bearbeitet 21.11.2024 06:49:43

MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerabi...

7.8

CVE-2022-24050

  • EPSS 0.07%
  • Veröffentlicht 18.02.2022 20:15:17
  • Zuletzt bearbeitet 21.11.2024 06:49:44

MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The spe...